Token sharing system and method
First Claim
Patent Images
1. An authentication system, comprising:
- a token constructed and arranged to have an identifier and to generate a one time password;
a one time password validation server constructed and arranged to validate the one time password generated by the token, the validation server having a network address;
a token lookup service constructed and arranged to correlate a token identifier with a network location of the validation server;
a resource validation server constructed and arranged to validate at least a first authentication factor provided by a user of the token, and to send a request for the location of the one time password validation server to the token lookup server if the first factor is successfully validated and to send a one time password validation request to the one time password validation server.
3 Assignments
0 Petitions
Accused Products
Abstract
A scalable system and method for authenticating entities such as consumers to entities with a diverse set of authentication requirements, such as merchants, banks, vendors, other consumers, and so on. An authentication credential such as a token can be shared among several resources as a way to authenticate the credential owner.
114 Citations
6 Claims
-
1. An authentication system, comprising:
-
a token constructed and arranged to have an identifier and to generate a one time password;
a one time password validation server constructed and arranged to validate the one time password generated by the token, the validation server having a network address;
a token lookup service constructed and arranged to correlate a token identifier with a network location of the validation server;
a resource validation server constructed and arranged to validate at least a first authentication factor provided by a user of the token, and to send a request for the location of the one time password validation server to the token lookup server if the first factor is successfully validated and to send a one time password validation request to the one time password validation server. - View Dependent Claims (2, 3)
-
-
4. A token lookup server, including:
-
a processor;
a memory coupled to the processor, the processor and memory constructed and arranged to store a network address of a one time password validation server and a token identifier, wherein the one time password validation server is constructed and arranged to validate a one time password generated by a token that corresponds to the token identifier. - View Dependent Claims (5)
-
-
6. A method for authentication, including:
-
receiving at a token lookup service a request for a network address of a one time password validation server, the request including a token identifier;
determining a network address corresponding to a once time password validation server and the received token identifier; and
sending the network address in response to the request.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeCA, Inc. (d/b/a CA Technologies) (Broadcom, Inc.)
-
Original AssigneeSymantec Corporation (NortonLifeLock Inc.)
-
InventorsBajaj, Siddharth, Popp, Nicolas, M'Raihi, David
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current726/9
-
CPC Class CodesG06F 21/33 using certificatesG06F 21/34 involving the use of extern...G06F 21/40 by quorum, i.e. whereby two...G06F 21/44 Program or device authentic...G06F 2221/2115 Third partyG06F 2221/2117 User registrationG06F 2221/2129 Authenticate client device ...G06F 2221/2153 Using hardware token as a s...G06Q 20/341 Active cards, i.e. cards in...G06Q 20/40 Authorisation, e.g. identif...G06Q 20/4014 Identity check for transact...G07C 9/27 with central registrationG07F 7/1008 Active credit-cards provide...H04L 2209/56 Financial cryptography, e.g...H04L 63/0838 using one-time-passwordsH04L 63/0853 using an additional device,...H04L 9/0877 using additional device, e....H04L 9/3228 One-time or temporary data,...H04L 9/3234 involving additional secure...
